Single Sign-On (SSO) Authentication with Microsoft Azure

In OfficeRnD Hybrid, you can implement a single sign-on using Microsoft Azure Active Directory. This integration will enable your employees to sign in to OfficeRnD Hybrid using their Active Directory credentials. 

In this article, you will learn how to enable single sign-on with Azure Active Directory for your employees. 

Setting Up SSO with Azure AD

  1. Log in to your OfficeRnD Hybrid account
  2. Navigate to Settings/Integrations
  3. Expand the Authentication section and next to SSO Authentication click Activate.
  4. Click Configure and copy the Return URL read-only text. You will need to use it shortly.
    mceclip8.png
  5. Open your Azure portal - https://portal.azure.com/ and select the Azure Active Directory module.
    mceclip0.png
  6. Register a New Application by navigating to App registrations and clicking + New Registration.
    mceclip1.png
  7. While registering the application you will be asked for a Web Redirect URL. Paste the "Return URL" copied from step 1.
    mceclip2.png
  8. After successfully registering the application note down the Application (client) ID and copy it in a safe place.
    mceclip3.png
  9. Then from the sidebar, navigate to Certificates & secrets and click to create a New client secret.
    mceclip4.png
  10. Give your secret a descriptive name,  set an expiration period (if necessary), and save it.
  11. After adding the secret, copy the text from the Value column.
    mceclip6.png
  12. Go back to your account in OfficeRnD Hybrid
  13. Navigate to Settings/Integrations and under SSO Authentication click Configure.
  14. Paste both the Application client ID and client secret you acquired in the previous steps.
    mceclip9.png
  15. In the Discovery URL field use the Discovery ID template. Replace the {Tenant ID} in the URL with the Tenant ID of your organization. You can find the Tenant ID under Tenant properties in Microsoft Azure.
    Discovery ID template: https://login.microsoftonline.com/{Tenant ID}/v2.0/.well-known/openid-configuration
    mceclip10.png
  16. Select Enable Automatic Account Activation - With this setting enabled - employees that already exist in OfficeRnD Hybrid will be allowed to log into the Portal without needing to be explicitly invited. If this setting is disabled - employees without prior access to the Portal will need to have it Enabled by an administrator.
  17. Click Update.
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.